Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

€2 a Month €5 a Month One-off amount
drone image via Shutterstock
Data Breach

Irish drone register allowed access to personal details of 2,000 members

The Irish Aviation Authority said the error was down to a technical issue which has now been resolved.
6.03am, 8 Apr 2016
13.6k
21

A TECHNICAL ISSUE with the Irish Aviation Authority’s (IAA) drone register allowed registered drone owners to access personal details of others on the system.

All drone owners are required to register with the IAA and the authority said some 2,000 people have signed up to its online database.

The breach, which allowed registered users to view names, addresses, email addresses and phone numbers of other people registered on the site, was brought to the attention of the authority on Sunday night.

In a statement to TheJournal.ie, the IAA revealed it was aware of four users who downloaded the file.

“These people were members of the drone or aeromodelling community, who had registered their small unmanned aircraft on the system.”

The IAA said the system was not hacked and no unauthorised access was gained by the general public, just registered users.

Upon notification of the erroneous permission the IAA worked with its system supplier, CGH to quickly resolve the matter. The system was taken offline, fixed, tested and restored within two hours. We have advised the office of the Data Protection Commissioner of this error.

The office of the Data Protection Commissioner confirmed it was investigating the breach.

Users who downloaded the file, inadvertently or otherwise, are being urged to destroy the material. They are obliged to do so in accordance with data protection laws.

“Data privacy is of the utmost importance to our organisation. We have swiftly taken measures to address the issue and to ensure that the data integrity of the Asset system is maintained,” the IAA said.

“The IAA wishes to sincerely apologise for the concern or any inconvenience as a result of this event.”

Read: Take a break and watch this uplifting drone footage of Dublin>

Making a difference

A mix of advertising and supporting contributions helps keep paywalls away from valuable information like this article. Over 5,000 readers like you have already stepped up and support us with a monthly payment or a once-off donation.

For the price of one cup of coffee each week you can make sure we can keep reliable, meaningful news open to everyone regardless of their ability to pay.

Support us Learn More

Author
Michelle Hennessy
michelle@thejournal.ie
@michellehtweet
Send Tip or Correction
Read Next
More Stories
Related Tags
Your Voice
Readers Comments
21
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.